Cybersecurity Tales: Espionage, Ransomware, and the Stories Behind the Threats

Welcome to this special episode of the Breaking Badness Cybersecurity Podcast! We’re turning the spotlight on the books that have shaped the world of cybersecurity and inspired professionals in the field. As part of our ongoing book club series, this episode is a journey into storytelling, research, and the unique perspectives that make cybersecurity literature so compelling. From ransomware diaries to the geopolitics of cyber warfare, this discussion is packed with insights and actionable takeaways for anyone working in Infosec.

Show Notes: 

The Power of Storytelling in Cybersecurity

Storytelling plays a crucial role in translating complex cybersecurity concepts into accessible, engaging narratives. Whether it’s a book on ransomware investigations or an exploration of espionage, the human element keeps the audience hooked. 

“Good cybersecurity writing has to have storytelling. If you get too caught up in the technical details, you miss the forest for the trees.” – Alan Liska

The Risks and Rewards of Writing About Cybercrime

Jon DiMaggio, author of The Art of Cyber Warfare, shares his experiences writing about ransomware, espionage, and the personal risks involved. 

“When a threat actor uses your face as their avatar, it’s a surreal moment—but also a sign of respect in their culture.” – Jon DiMaggio 

DiMaggio describes the challenges of documenting his work with government agencies while ensuring balanced, unbiased storytelling. He even reveals how cybercriminals downloaded his book illegally and gave feedback! 

Dimitri Alperovitch, author of World on the Brink, shares his insights on the evolving cyber threats posed by China and the global implications.

“China’s rise to power has been enabled by American businesses, intellectual property transfers, and the attractiveness of their market. We all have a role in building resilience against this threat.” - Dimitri Alperovitch

Must-Read Books for Infosec Professionals 

The panel highlights books that every cybersecurity professional should read, blending technical insights with broader cultural and historical perspectives. 

1. The Art of Cyber Warfare by Jon DiMaggio 

This book blends personal experience with technical analysis to recount cyber espionage and ransomware incidents. 

• “The first half of the book is my passion—telling the stories behind real-world ransomware and espionage attacks. It’s what I love the most.” – Jon DiMaggio 
• DiMaggio draws on his career in cybersecurity and government intelligence to explore the inner workings of cybercrime and threat actors. 
• Link: The Art of Cyberwarfare: An Investigator's Guide to Espionage, Ransomware, and Organized Cybercrime

2. Countdown to Zero Day by Kim Zetter 

Kim Zetter’s landmark book provides an in-depth look at the Stuxnet attack, widely considered the first true cyber weapon. 

• “Kim Zetter’s storytelling is unparalleled. She captures the complexities of cybersecurity like no one else.” – Alan Liska 
• A must-read for understanding the history and implications of nation-state cyber operations. 
• Link: Countdown to Zero Day

3. World on the Brink by Dmitri Alperovitch 

This book examines China’s role in cyber warfare, the geopolitical stakes surrounding Taiwan, and the risks of economic dependence on Chinese technology. 

• “This isn’t just a challenge for governments. Businesses and individuals must work together to deter threats and ensure resilience.” – Dmitri Alperovitch 
• A thought-provoking look at the intersection of cybersecurity, geopolitics, and strategy.
• Link: World on the Brink

4. Hunting Cyber Criminals by Vinny Troia 

Vinny Troia offers an inside look at the lives of cybercriminals and the techniques used to track them. 

• “I really enjoyed the storytelling in this book. It brings the technical and personal aspects of cybercrime investigations together.” – Jon DiMaggio 
• A gripping account of the battle between law enforcement and threat actors.
• Link: Hunting Cyber Criminals

5. Bluenomicon: The Network Defender’s Compendium 

This free ebook is a practical guide for blue team defenders, offering tools and techniques for securing networks. 

• “I love the illustrations—it’s medieval meets futuristic. The tone flows so well, which you wouldn’t expect from an industry book.” – Kali Fencl 
• Relevance: A hands-on resource for cybersecurity practitioners. 
• Link: Bluenomicon

6. Normal Accidents by Charles Perrow 

Charles Perrow explores how complex systems fail, with lessons that apply directly to cybersecurity. 

• “The book dives into tightly coupled systems and how unpredictable interactions lead to failures—concepts that are deeply relevant to IT and security.” - Ian Campbell
• A fascinating perspective on understanding and managing risk in complex environments.
• Link: Normal Accidents

7. Active Measures by Thomas Rid 

A thorough examination of disinformation campaigns and their influence on global politics and cybersecurity. 

• “Rid’s analysis of disinformation is crucial for understanding the interplay of misinformation, politics, and security.” - Alan Liska
• With misinformation playing a role in modern cyber incidents, this book provides essential context. 
• Link: Active Measures

8. Thinking Fast and Slow by Daniel Kahneman 

This book examines cognitive biases and their impact on decision-making, offering valuable insights for analysts. 

• “Every analyst should read this. It helps you step back, challenge your biases, and think more critically.” – Alan Liska 
• A practical guide to improving critical thinking and analysis. 
• Link: Thinking Fast and Slow

9. Inside Cyber Warfare by Jeffrey Carr 

One of the foundational books on cyber warfare, providing historical and technical insights into digital conflict. 

• “It’s dated but still a fantastic historical look at the early days of cyber warfare. It inspired me to dive deeper into the field.” – Jon DiMaggio 
• Perfect for understanding how cyber warfare has evolved over time. 
• Link: Inside Cyber Warfare

10. The Ransomware Hunting Team by Renee Dudley and Daniel Golden 

This book highlights the unsung heroes working behind the scenes to combat ransomware. 

• “It’s a fascinating account of the collaboration and effort that goes into combating ransomware.” – Jon DiMaggio 
• An inspiring look at the fight against one of cybersecurity’s most persistent threats.
• Link: The Ransomware Hunting Team

11. This Is How They Tell Me the World Ends by Nicole Perlroth 

Nicole Perlroth investigates the zero-day market and the global arms race in digital vulnerabilities.

• “It’s a riveting exploration of how zero-days have become a commodity, shaping the future of cyber warfare and defense.” - Daniel Schwabe 
• A must-read for those curious about the dark underbelly of cyber weapons.
• Link: This Is How They Tell Me the World Ends

Giveaway Alert: Win a Cybersecurity Book! 

We’re giving away a free copy of The Art of Cyber Warfare by Jon DiMaggio! To enter, simply comment “Book it” on our LinkedIn post for this episode. The winner will be announced on Wednesday, January 15th, so don’t miss out!”

Watch on YouTube

That’s about all we have for this week, you can find us on Mastodon and Twitter/X @domaintools, all of the articles mentioned in our podcast will always be included on our podcast recap. Catch us Wednesdays at 9 AM Pacific time when we publish our next podcast and blog.

*A special thanks to John Roderick for our incredible podcast music!